Lucene search
K

4 matches found

CVE
CVE
added 2026/06/23 1:31 p.m.9 views

CVE-2026-11772

DRIMO CMS is affected by a Reflected XSS in the searching functionality, triggered via the q parameter. The vulnerability allows arbitrary JavaScript execution in the victim’s browser when a crafted URL is opened. The affected software is at end-of-life and no security updates are planned. Mitiga...

5.1CVSS6.1AI score0.00378EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/12/09 6:29 p.m.4 views

CVE-2025-40700

Reflected Cross-Site Scripting XSS in IDI Eikon's Governalia. The vulnerability allows an attacker to execute JavaScript code in the victim's browser when a malicious URL with the 'q' parameter in '/search' is sent to them. This vulnerability can be exploited to steal sensitive information such a...

5.1CVSS6.1AI score0.00161EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/10 11:45 a.m.1 views

CVE-2025-40725 Reflected Cross-Site Scripting (XSS) in Azon Dominator

Reflected Cross-Site Scripting XSS vulnerability in Azon Dominator. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL using the “q” parameter in /search via GET. This vulnerability can be exploited to steal sensitive user data...

5.1CVSS5.6AI score0.00306EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/10 11:45 a.m.6 views

CVE-2025-40725 Reflected Cross-Site Scripting (XSS) in Azon Dominator

Reflected Cross-Site Scripting XSS vulnerability in Azon Dominator. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL using the “q” parameter in /search via GET. This vulnerability can be exploited to steal sensitive user data...

5.1CVSS0.00306EPSS
Exploits0References1
Rows per page
Query Builder